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(Si) Mutual authentication system and method. 



(57) A mutual authentication system authenticates 
a first electronic device and a second electronic 
device by transmitting authentication data be- 
tween the first and second electronic devices. In 
this system, the second electronic device trans- 
mits a first authenication data to the first elec- 
tronic device. In the first electronic device, the 
legitimacy of the second electronic device is 
determined based on the first authentication 
data transmitted from the second electronic 
device. The first electronic device also tran- 
smits a second authentication data, which is 
used for determining the legitimacy of the first 
electronic device, to the second electronic de- 
vice. When the second electronic device is not 
determined to be legitimate by the first elec- 
tronic device, the first electronic device does 
not transmit the second authentication data to 
the second electronic device. 
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The present invention relates to a system and 
method for effecting mutual authentication between a 
portable electronic device such as an IC card having 
an IC (integrated circuit) chip enclosed therein and a 
host device or terminal device. 

2. Description of the Related Art 

In order to increase the security of the data stored 
on an IC card, the provision of a cipher algorithm 
within the IC card and the use of this to execute mutual 
authentication between an external terminal device, 
such as a host computer, and the IC card was con- 
ceived. To provide such a mutual authentication sys- 
tem, first, both the IC card and the terminal device 
were designed to contain identical key data and iden- 
tical initial data. Then, using a specified command as 
the trigger, the result of calculating the key data and 
the initial data as a parameter is transmitted by one of 
the IC card and terminal device to the other one as 
authentication data. The side which receives these 
authentication data (the IC card) also carries out the 
calculation of the key data and the initial data as a par- 
ameter and executes a comparison between that 
result and the authentication data which has been 
transmitted to it. Thus, mutual authentication is car- 
ried out by the IC card and the terminal device alter- 
nately executing the above sequence of operations. 

Thus, after the IC card has determined "the legi- 
timacy of the terminal device" based on the authenti- 
cation data which have been transmitted from the 
terminal device, data are transmitted from the IC card 
to the terminal device so that the terminal device may 
judge "the legitimacy of the IC card". However, the IC 
card's authentication data are transmitted to the ter- 
minal device regardless of the result of "the legitimacy 
of the terminal device". Thus, there is a problem in that 
the authentication data of the IC card were ack- 
nowledged even for terminal devices which were not 
legitimate. 

As described above, in prior art mutual authenti- 
cation systems, after determining the legitimacy 
based on the authentication data transmitted from an 
terminal device to an IC card, authentication data 
were transmitted from the IC card to the terminal 
device regardless of the result Thus, there was a 
problem concerning the security of the authentication 
data of the IC card . 

SUMMARY OF THE INVENTION 

It is an object of the present invention to provide 
a mutual authentication system which increases the 
security of the authentication data of a portable type 
electronic device or IC card. 

It is another object of the present invention to pro- 
vide a mutual authentication method which increases 
the security of the authentication data of a portable 



type electronic device or IC card. 

According to the present invention there is pro- 
vided a mutual authentication system for authenticat- 
ing a first electronic device and a second electronic 

5 device by transmitting authentication data between 
the first and second electronic devices, comprising 
first transmission means for transmitting a first set of 
authentication data from the second electronic device 
to the first electronic device; determination means 

10 provided in the first electronic device for determining 
the legitimacy of the second electronic device based 
on the first authentication data transmitted from the 
second electronic device; second transmission 
means for transmitting a second set of authentication 

15 data, which is used for determining the legitimacy of 
the first electronic device, from the first electronic 
device to the second electronic device; and means for 
inhibiting the operation of the second transmission 
means when the second electronic device is not 

20 determined to be legitimate by the determination 
means. 

Further, according to the present invention there 
is provided a mutual authentication method for 
authenticating a first electronic device and a second 

25 electronic device by transmitting authentication data 
between the first and second electronic devices, com- 
prising the steps of transmitting a first set of authenti- 
cation data from the second electronic device to the 
first electronic device; determining the legitimacy of 

30 the second electronic device based on the first 
authentication data transmitted from the second elec- 
tronic device; transmitting a second set of authenti- 
cation data, which is used for determining the 
legitimacy of the first electronic device, from the first 

35 electronic device to the second electronic device; and 
inhibiting the transmitting of the second authenti- 
cation data when the second electronic device is not 
determined to be legitimate by the determining step. 

40 BRIEF DESCRIPTION OF THE DRAWINGS 

FIGURE 1 is a block diagram showing one embo- 
diment of a mutual authentication system accord- 
ing to the present invention; 

45 FIGURE 2 is a function block diagram of an IC 

card shown in FIGURE 1; 
FIGURE 3 is a block diagram showing the internal 
construction of the IC card shown in FIGURE 1; 
FIGURE 4 is a diagram schematically showing 

so memory areas of a data memory in the IC card; 

FIGURES 5A to 5E are diagrams showing the for- 
mats of various commands transmitted from the 
terminal device to the IC card; 
FIGURES 6A to 6D are flowcharts for explaining 

55 the operation of the mutual authentication system 

of the above embodiment; and 
FIGURE 7 is a schematic diagram of the mutual 
authentication system according to the present 
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invention. 

DETAILED DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

There will now be described an embodiment of 
the present invention with reference to the drawings. 

FIGURE 1 shows an example of the construction 
of a terminal device 8 (second electronic device) used 
as a host device for dealing with an IC card 1 (first 
electronic device) used as a portable type electronic 
device according to trie present invention. That is, ter- 
minal device 8 permits IC card 1 to be connected to a 
CPU 3 functioning as a control section via a card 
reader/writer 2 and is constructed by connecting a 
keyboard 4, CRT display unit 5, printer 6 and floppy 
disk drive unit 7 to CPU 3. 

FIGURE 2 shows functional blocks for IC card 1 . 
The storage of an identification number, set by the 
user, is executed in an identification number (ID) set- 
ting/verifying section 12. The ID number input by the 
user when the user uses IC card 1 and the ID number 
which has already been set are collated. If the correct 
ID number has been input, the operation of a 
read/write section 1 1 is permitted. Read/write section 
11 executes the reading, writing and erasing of data 
in a data memory 16 (described later). An encrypt- 
ing/decrypting section 13 encrypts data read by 
read/write section 11 and the data are transmitted 
from CPU 3 to other terminal devices. When encryp- 
ted data have been transmitted from other terminal 
devices, 

encrypting/decrypting section 13 decrypts these 
encrypted data. Then these decrypted data are stored 
in data memory 16 by read/write section 11 . The res- 
pective functions of read/write section 11, ID set- 
ting/verifying section 12 and encrypting/decrypting 
section 13 are controlled by a supervisor 14. Super- 
visor 14 executes control by selecting specified func- 
tions from these respective functions through function 
codes input from card reader/writer 2 or function 
codes to which data have been added. 

FIGURE 3 shows a block diagram of IC card 1 . IC 
card 1 contains a CPU 15 used as a control element. 
Data memory 16, program memory 17 and contact 
section 18 are controlled by CPU 15. Among these, 
data memory 16 is used to store various data and is 
composed of, for instance, an EEPROM. Program 
memory 17 is composed of, for instance, a masked 
ROM, and stores the control program for CPU 1 5. The 
writing of various data to data memory 16 and the 
reading of various data from data memory 16 are 
executed under the control of CPU 1 5 using the con- 
trol program stored in program memory 17. Contact 
section 18 is for obtaining electrical contact with card 
reader/writer 2 of terminal device 8 in order to execute 
access between CPU 15 of IC card 1 and CPU 3 of 
terminal device 8. The portion within a dotted chain 



line, CPU 15, data memory 16 and program memory 
17, is composed of a single IC chip embedded in the 
main body of IC card 1. 

As shown in FIGURE 4, for instance, data mem- 

5 ory 16 is constituted by a common data file (hereinaf- 
ter referred to as a CDF) 16A commonly used for all 
of the applications, and a plurality of application data 
files (hereinafter referred as ADFs) 16B, 16C and 16D 
used for respective application and data file names 

10 (DFN) are respectively given to the ADFs 16B, 16C 
and 16D. 

In the example in FIGURE 4, CDF 16A contains 
designation key data (DK) aaa indicated by a key data 
number KID01 and internal key data (IK) bbb indi- 

15 cated by a key data number KID02, and ADF16B indi- 
cated by DFN=AAA contains designation key data 
(DK) ccc indicated by a key data number KID03 and 
designation key data (DK) ddd indicated by a key data 
number KID04. 

20 ADF 16C indicated by DFN=BBB contains inter- 

nal key data (IK) eee indicated by a key data number 
KID05 and a data area indicated by an area number 
AID55. Particularly, the data area includes attribute 
information (A) for permitting access when correct 

25 authentication is obtained in the authentication pro- 
cess by use of the internal key data (IK) in ADF 16C. 
Further, ADF 16D indicated by DFN=CCC contains 
internal key data (IK) fff indicated by a key data num- 
ber KID80, a data area indicated by an area number 

30 AID56 and a data area indicated by an area number 
AID57. Particularly, the data area indicated by the 
area number AID56 includes attribute information (C) 
for permitting access when correct authentication is 
obtained in the authentication process by use of the 

35 internal key data (IK) in CDF 16A. The data area indi- 
cated by the area number AID57 includes attribute 
information (X) for permitting access when correct 
authentication is obtained in the authentication pro- 
cess by use of the internal key data (IK) in CDF 16A 

40 or internal key data (IK) in ADF 1 6D. 

The designation key data (DK) is used by terminal 
device 8 for authenticating IC card 1, and the internal 
key data (IK) is used by IC card 1 for authenticating 
terminal device 8. 

45 The operation of IC card 1 will now be described 

with reference to FIGURES 5A to 5E, FIGURES 6A to 
6D and 7. When IC card 1 receives a command mes- 
sage shown in FIGURE 5Afrom terminal device 8, IC 
card 1 executes a mutual authentication preparation 

so flowchart for the IC card and terminal device shown in 
FIGURE 6A based on a function code 21 contained 
therein. The process is executed by CPU 15 accord- 
ing to the program stored in program memory 17. 
First, in step ST1 , random number data A is generated 

55 in terminal device 8 from which data "EXCH (ALG, 
KID-03, A)" is transmitted to IC card 1. Then, it is 
determined in step ST1 by referring to selection ADF 
fixed information in internal RAM 15a of CPU 15 
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whether or not ADFs 16B to 16D have been selected. 
At this time, if the selection has not been completed, 
that is, if "NO" in step ST1, a key data number (KID) 
22 of the input command message is detected from 
CDF 16A in data memory 16 in step ST2. If the selec- 
tion has been completed, that is, if "YES" in step ST1 , 
the KID 22 is detected in CDF 16A and the selected 
ADF in step ST3. In step ST3, the random data A is 
stored in internal RAM 15a of IC card 1. If it is not 
detected at this time, an error status is transmitted to 
terminal device 8 in step ST4. 

If the KID is detected, corresponding key data is 
internally read in step ST5 and it is checked whether 
it is correct or not. At this time, if it is not correct, an 
error status is transmitted to terminal device 8. If it is 
correct, random number data A in the area 23 of the 
command message and the corresponding key data 
is stored in a specified area in internal RAM 15a of 
CPU 15 in step ST6. Next, random number data B is 
generated in step ST7 in accordance with a specified 
algorithm from this random number data A, the inhe- 
rent card number which was set at the time of issuing 
the card and card random number data which was 
stored beforehand as an initial value in data memory 
16, and random number data B is stored into data 
memory 16 as new card random number data in step 
ST8. 

Then, in step ST9, a check is once more made on 
whether the ADFs have been selected or not. If they 
have not been selected, a KID in the internal key data 
is detected by CDF 16A in the next step ST10. If they 
have been selected, a KID in the internal key data is 
detected from CDF 1 6A and also from the selected 
ADF in step ST1 1 (in this case, ADF is the preferential 
subject). If the KID is not detected, an error status is 
transmitted to terminal device 8 in the next step ST12. 
If it is detected, corresponding internal key data is 
read internally in the next step ST13 and whether the 
key data is correct or not is checked. At this time, if it 
is not correct, an error status is transmitted to terminal 
device 8. 

If the key data is correct, step ST14 is effected to 
encrypt the previously generated random number 
data B by using the detected internal data ddd as an 
encryption key, and the result is stored into a specified 
area of internal RAM 15a as authentication data C2X. 
Then, the data "EXCH (ALG, KID-04. B)" including the 
random number data B and KID of the internal key 
data are transmitted to terminal device 8 in step ST15 
and this flow control is completed. 

According to the above flow control, key desig- 
nation data and random number data used for mutual 
authentication between terminal device 8 and IC card 
1 can be commonly used. 

In this embodiment, it is a characteristic that, if 
CPU 15 of IC card 1 detects that the authentication 
data which has been transmitted from terminal device 
8 to IC card 1 is invalid, CPU 15 of IC card 1 does not 



output authentication data to terminal device 8. Next, 
this function will now be described with reference to 
FIGURE 6B. 

When CPU 15 of IC card 1 receives a command 

5 message shown in FIGURE 5B, the flow control 
shown in FIGURE 6B is selected according to the 
function code 24 thereof and effected. That is, first it 
checks whether the mutual authentication preparation 
command described above has been executed or not. 

w If it has not been executed, an error status is transmit- 
ted to terminal device 8 in step ST21 . If the flow in FIG- 
URE 6A has already been executed, an encryption of 
random number data B using key data ddd is excuted 
in terminal device 8 to obtain ecrypted data as authen- 

15 tication data C2 25 which is then transmitted to IC card 
1 . In the step ST22, authentication data C2 25 is com- 
pared with authentication data C2X which was previ- 
ously stored in internal RAM 1 5a. If they coincide with 
each other in step ST23, a coincidence flag is set to 

20 the ON state in the step ST24. If "NO" is obtained in 
the step ST23, the coincidence flag is set to the OFF 
state in the step ST25. Here, in these coincidence 
flags, there are an ADF-corresponding coincidence 
flag which indicates the authentication result of ADF 

25 and a CDF-corresponding coincidence flag which 
indicates the authentication result of CDF. The ADF- 
corresponding coincidence flag or the CDF-corres- 
ponding coincidence flag is set to the ON or OFF state 
according to whether the internal key data belongs to 

30 ADF or CDF. This coincidence flag is composed of "0" 
and "1" bit data. By referring to this result, IC card 1 
determines whether or not to output authentication 
data. 

If authentication data C2 and authentication data 

35 C2X coincide, authentication data C1X is generated 
by encrypting random number data A previously 
stored in the internal RAM 15a by using the desig- 
nation key data ccc as an encryption key in the step 
ST26. Then, this authentication data C1X and the 

40 result of the coincidence flag that "they are in coinci- 
dence" are transmitted to terminal device 8 in the step 
ST27, and this flow control is completed. Also, if 
authentication data C2 do not coincide with authenti- 
cation data C2X, only the result of the coincidence 

45 flag that "they are not in coincidence" is transmitted to 
terminal device 8 in the step ST28, and this flow con- 
trol is completed. 

By this means, authentication data C1X used for 
determining IC card 1 by terminal device 8 is only 

so transmitted to a legitimate terminal device 8. That is, 
if it is not a legitimate terminal device 8, this non-legi- 
timate terminal device cannot read any data concern- 
ing IC card 1. By the above flow control, mutual 
authentication of IC card 1 with terminal device 8 can 

55 be attained. 

Next, when IC card 1 receives a command mes- 
sage shown in FIGURE 5C from terminal device 8, an 
ADF selection flow of FIGURE 6C is selected accord- 
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ing to the function code 26 and effected. First, it is 
checked in the step ST31 whether DFN 27 included 
in the message is registered in data memory 16 of IC 
card 1. If it is not registered, an error status is trans- 
mitted to terminal device 8 in the step ST32. If it is 
registered, the ADF-corresponding coincidence flag 
among the coincidence flags of the C2/C2X is set to 
the OFF state in the step ST33. Next, fixed infor- 
mation corresponding to the designated DFN is held 
in internal RAM 15a in the step ST34 and a correct 
completion status is transmitted to terminal device 8. 

Next, when IC card 1 receives a read command 
message shown in FIGURE 5D or write command 
message shown in FIGURE 5E from terminal device 
8, the flow control of FIGURE 6D is selected accord- 
ing to the function code 28 or 30 and effected. That is, 
it is first checked in the step ST41 whether the ADF 
has been selected or not, and if it has not been selec- 
ted, an area identification number (AID) 29 or 31 in the 
input message is detected from CDF 16A in the step 
ST42. If it has been selected, desig nated AID is detec- 
ted in the selected ADF and CDF 16A in the step 
ST43. At this time, if there is no AID detected, an error 
status is transmitted to terminal device 8 in the step 
ST44. If the designated AID is detected, it is checked 
in the step ST46 whether or not it is necessary to 
determine the previous coincidence flag by referring 
to the attribute information stored in the correspond- 
ing designated area in the step ST45. If this is neces- 
sary, it is determined whether it is an 
ADF-corresponding coincidence flag or CDF-corres- 
ponding coincidence flag, or it can be either of them. 
If the ADF-corresponding coincidence flag is neces- 
sary or if it can be either of them, the ADF-correspond- 
ing coincidence flag is referred to and it is checked 
whether it is set in the ON state or not. If it is set in the 
OFF state, an error status is transmitted to terminal 
device 8 in the step ST47. If the CDF-corresponding 
coincidence flag is necessary or if it can be either of 
them, the CDF-corresponding coincidence flag is 
referred to and it is checked whether it is set in the ON 
state or not. If it is set in the OFF state, an error status 
is transmitted to terminal device 8 in the step ST47. 
Then, a corresponding read or write process is effec- 
ted in the step ST48 according to the function code 28 
or 30 in the message and the result of the process is 
transmitted to terminal device 8 in the step ST49. 

Next, the operation of IC card 1 having the con- 
struction of the area and key data shown in FIGURE 
4 is explained. In FIGURE 4, the memory areas are 
arranged as described before, and in this state, key 
dataofKIDOl is used as designating key data and key 
data of KID 02 is used as internal key data for mutual 
authentication in the case where the ADF selection is 
not effected. 

In a case where the ADF 16B is selected by 
DFN=AAA, key data of KID03 or KID04 or key data of 
KID01 is used as designating key data and key data 



of KID02 is used as internal key data. 

Likewise, in a case where the ADF 16C is selec- 
ted by DFN=BBB, key data of KID01 is used as speci- 
fying key data and key data of KID05 is used as 
5 internal key data. 

In order to make access to the area of AID55 in 
the ADF 16C, the attribute of the area is so deter- 
mined as to necessitate internal key data in the ADF. 
Therefore, the mutual authentication must be effected 
10 after ADF 1 6C is selected. If the mutual authentication 
is effected before ADF 16C is selected, even if the 
mutual authentication is effected, ADF 16C cannot be 
accessed since the internal key data KID02 in CDF 
16Aisused. 

15 Further, for access to the area of AID56 in ADF 

16D, the attribute of the area is so determined as to 
necessitate internal key data in CDF 16A. Therefore, 
after the mutual authentication is effected by using 
key data KID02 in CDF 16A, ADF 16D must be selec- 

20 ted and access will be made to the data area indicated 
by the area number AID56. Thus, if the CDF-corres- 
ponding coincidence flag is set in the ON state, 
access is available. 

Concerning the area of AID57, internal key data 

25 are not required. Thus, access is available even if 
ADF 16D is selected after mutual authentication in 
which key data KID02 in CDF 16A are used or on the 
contrary, even after mutual authentication has been 
executed by key data KID80 in ADF 16D has been 

30 selected. Therefore, access to the area of AID57 can- 
not be made in a case where ADF 16C is first selected 
and then ADF 16D is selected after the mutual 
authentication is effected. 

In this way, determination is made as to whether 

35 the key data used for authentication are common data 
file (CDF) data or are application data file (ADF) data. 
If they are application data file (ADF) data, the authen- 
tication result of the application data file is cleared 
during application data file is selected. By this means, 

40 every application data file holds its own different key 
data and authentication is effected with these key 
data. Thus, security preservation which is established 
by deciding the availability of access to the data mem- 
ory can be executed while maintaining security be- 

45 tween application data files. 

Accordting to the present invention, when execut- 
ing mutual authentication between a terminal device 
and an IC card, the mutual authentication data for 
determining the legitimacy of the IC card in respect of 

so the terminal device cannot be transmitted from the IC 
card as long as the terminal device is not determined 
as legitimate by the IC card. By this means, the 
authentication code is not transmitted from the IC card 
to a terminal device which is not legitimate. Thus, the 

55 security of the authentication data of the IC card can 
be increased. 
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Claims 

1. A mutual authentication system for authenticating 
a first electronic device and a second electronic 
device by transmitting authentication data be- 5 
tween the first and second electronic devices, 
comprising: 

first transmission means for transmitting a 
first authentication data from the second elec- 
tronic device to the first electronic device; w 

determination means provided in the first 
electronic device for determining the legitimacy of 
the second electronic device based on the first 
authentication data transmitted from the second 
electronic device; 15 

second transmission means for transmit- 
ting a second authentication data, which is used 
for determining the legitimacy of the first elec- 
tronic device, from the first electronic device to 
the second electronic device; and 20 

inhibition means for inhibiting the oper- 
ation of the second transmission means when the 
second electronic device is not determined to be 
legitimate by the determination means. 

25 

2. A mutal authentication system as in claim 1 , whe- 
rein the first electronic device includes a portable 
electronic device having a contact section for 
electrically communicating with the second elec- 
tronic device. 30 

3. A mutal authentication system as in claim 2, whe- 
rein the second electronic device includes a ter- 
minal device for electrically communicating with 

the portable electronic device. 35 

4. A mutual authentication system as in claim 1, 
wherein the first transmission means comprises a 
card reader/writer in the second electronic device 
which communicates with a contact section in the 40 
first electronic device. 

5. A mutual authentication system as in claim 1, 
wherein the determination means includes 
means for comparing the first authentication data 45 
with data stored in the first electronic device. 

6. A mutual authentication method for authenticat- 
ing a first electronic device and a second elec- 
tronic device by transmitting authentication data so 
between the first and second electronic devices, 
comprising the steps of: 

transmitting a first authentication data from 
the second electronic device to the first electronic 
device; 55 

determining the legitimacy of the second 
electronic device based on the first authentication 
data transmitted from the second electronic de- 



vice; 

transmitting a second authentication data, 
which is used for determining the legitimacy of the 
first electronic device, from the first electronic 
device to the second electronic device; and 

inhibiting the transmitting of the second 
authentication data when the second electronic 
device is not determined to be legitimate by the 
determining step. 

7. A mutual authentication method as in claim 6, 
wherein the step of determining the legitimacy of 
the second electronic device inlcudes comparing 
the first authentication data with data stored in the 
first electronic device. 

8. A mutual authentication method as in claim 6, 
wherein the step of inhibiting includes sending an 
indicaiton from the first electronic device to the 
second electronic device when the second elec- 
tronic device is determined not to be legitimate. 

9. A mutual authentication method for transmitting 
authentication data between first and second 
electronic devices for authenticating with each 
other, comprising the steps of: 

transmitting first data and first designate 
data designating first key data to the first elec- 
tronic device from the second electronic device; 

transmitting second data and second 
designate data designating second key data to 
the second electronic device from the first elec- 
tronic device; 

generating first authentication data based 
on the second data and the second key data in the 
first electronic device; 

generating second authentication data 
based on the received second data and the sec- 
ond key data designated by the second designate 
data in the second electronic device; 

comparing the first authentication data 
with the second authentication data transmitted 
from the second electronic device in the first elec- 
tronic device; 

generating third authentication data bases 
on the first data and the first key data designated 
by the first designate data in the first electronic 
device; and 

transmitting the third authenticatication 
data from the first electronic device to the second 
electronic device when the first authentication 
data coincides with the second authentication 
data in the comparing step. 

10. A mutual authenticaiton method as in claim 9, 
wherein the first electronic device includes stor- 
ing means having memory areas divided corre- 
sponding to application objects thereof for storing 
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key data corresponding to the divided areas. 

11. A mutual authenticaiton method as in claim 10, 
further comprises a step of controlling reading 

and writing operations with respect to the divided 5 
areas of the storing means based on a comprari- 
son result of the comparing step. 

12. A mutual authenticaiton method as in claim 10, 
wherein the storing means stores first key data 10 
and second key data into the each of memory 
areas. 
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(Si) Mutual authentication system and method. 

(g) A mutual authentication system authenticates 
a first electronic device and a second electronic 
device by transmitting authentication data be- 
tween the first and second electronic devices. In 
this system, the second electronic device trans- 
mits a first authenication data to the first elec- 
tronic device. In the first electronic device, the 
legitimacy of the second electronic device is 
determined based on the first authentication 
data transmitted from the second electronic 
device. The first electronic device also tran- 
smits a second authentication data, which is 
used for determining the legitimacy of the first 
electronic device, to the second electronic de- 
vice. When the second electronic device is not 
determined to be legitimate by the first elec- 
tronic device, the first electronic device does 
not transmit the second authentication data to 
the second electronic device. 
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